[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jun 2 09:13:16 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5955e756 by security tracker role at 2025-06-02T08:13:08+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,87 @@
+CVE-2025-5436 (A vulnerability was found in Multilaser Sirius RE016 MLT1.0. It has be ...)
+	TODO: check
+CVE-2025-5435 (A vulnerability was found in Marwal Infotech CMS 1.0. It has been decl ...)
+	TODO: check
+CVE-2025-5434 (A vulnerability was found in Aem Solutions CMS up to 1.0. It has been  ...)
+	TODO: check
+CVE-2025-5433 (A vulnerability was found in Fengoffice Feng Office 3.5.1.5 and classi ...)
+	TODO: check
+CVE-2025-5432 (A vulnerability has been found in AssamLook CMS 1.0 and classified as  ...)
+	TODO: check
+CVE-2025-5431 (A vulnerability, which was classified as critical, was found in AssamL ...)
+	TODO: check
+CVE-2025-5430 (A vulnerability, which was classified as critical, has been found in A ...)
+	TODO: check
+CVE-2025-5429 (A vulnerability classified as critical was found in juzaweb CMS up to  ...)
+	TODO: check
+CVE-2025-5428 (A vulnerability classified as critical has been found in juzaweb CMS u ...)
+	TODO: check
+CVE-2025-5427 (A vulnerability was found in juzaweb CMS up to 3.4.2. It has been rate ...)
+	TODO: check
+CVE-2025-5426 (A vulnerability was found in juzaweb CMS up to 3.4.2. It has been decl ...)
+	TODO: check
+CVE-2025-5425 (A vulnerability was found in juzaweb CMS up to 3.4.2. It has been clas ...)
+	TODO: check
+CVE-2025-5424 (A vulnerability was found in juzaweb CMS up to 3.4.2 and classified as ...)
+	TODO: check
+CVE-2025-5423 (A vulnerability has been found in juzaweb CMS up to 3.4.2 and classifi ...)
+	TODO: check
+CVE-2025-5422 (A vulnerability, which was classified as problematic, was found in juz ...)
+	TODO: check
+CVE-2025-5421 (A vulnerability, which was classified as critical, has been found in j ...)
+	TODO: check
+CVE-2025-5420 (A vulnerability classified as problematic was found in juzaweb CMS up  ...)
+	TODO: check
+CVE-2025-5412 (A vulnerability classified as problematic has been found in Mist Commu ...)
+	TODO: check
+CVE-2025-5411 (A vulnerability was found in Mist Community Edition up to 4.7.1. It ha ...)
+	TODO: check
+CVE-2025-5410 (A vulnerability was found in Mist Community Edition up to 4.7.1. It ha ...)
+	TODO: check
+CVE-2025-5409 (A vulnerability was found in Mist Community Edition up to 4.7.1. It ha ...)
+	TODO: check
+CVE-2025-5408 (A vulnerability was found in WAVLINK QUANTUM D2G, QUANTUM D3G, WL-WN53 ...)
+	TODO: check
+CVE-2025-5407 (A vulnerability has been found in chaitak-gorai Blogbook up to 92f5cf9 ...)
+	TODO: check
+CVE-2025-5113 (The Diviotec professional series exposes a web interface. One endpoint ...)
+	TODO: check
+CVE-2025-4010 (The Netcom NTC 6200 and NWL 222 series expose a web interface to be co ...)
+	TODO: check
+CVE-2025-49113 (Roundcube Webmail before 1.5.10 and 1.6.x before 1.6.11 allows remote  ...)
+	TODO: check
+CVE-2025-49112 (setDeferredReply in networking.c in Valkey through 8.1.1 has an intege ...)
+	TODO: check
+CVE-2025-3951 (The WP-Optimize  WordPress plugin before 4.2.0 does not properly escap ...)
+	TODO: check
+CVE-2025-25179 (Software installed and run as a non-privileged user may conduct improp ...)
+	TODO: check
+CVE-2025-20678 (In ims service, there is a possible system crash due to incorrect erro ...)
+	TODO: check
+CVE-2025-20677 (In Bluetooth driver, there is a possible system crash due to an uncaug ...)
+	TODO: check
+CVE-2025-20676 (In wlan STA driver, there is a possible system crash due to an uncaugh ...)
+	TODO: check
+CVE-2025-20675 (In wlan STA driver, there is a possible system crash due to an uncaugh ...)
+	TODO: check
+CVE-2025-20674 (In wlan AP driver, there is a possible way to inject arbitrary packet  ...)
+	TODO: check
+CVE-2025-20673 (In wlan STA driver, there is a possible system crash due to an uncaugh ...)
+	TODO: check
+CVE-2025-20672 (In Bluetooth driver, there is a possible out of bounds write due to an ...)
+	TODO: check
+CVE-2025-1485 (The Real Cookie Banner: GDPR & ePrivacy Cookie Consent WordPress plugi ...)
+	TODO: check
+CVE-2025-1235 (A low privileged attacker can set the date of the devices to the 19th  ...)
+	TODO: check
+CVE-2025-0358 (During an annual penetration test conducted on behalf of Axis Communic ...)
+	TODO: check
+CVE-2025-0325 (A Guard Tour VAPIX API parameter allowed the use of arbitrary values a ...)
+	TODO: check
+CVE-2025-0324 (The VAPIX Device Configuration framework allowed a privilege escalatio ...)
+	TODO: check
+CVE-2024-11857 (Bluetooth HCI Adaptor from Realtek has a Link Following vulnerability. ...)
+	TODO: check
 CVE-2025-XXXX [Post-Auth RCE via PHP Object Deserialization]
 	- roundcube 1.6.11+dfsg-1 (bug #1107073)
 	NOTE: https://roundcube.net/news/2025/06/01/security-updates-1.6.11-and-1.5.10



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5955e7569109dd0d34cef9e2c9f66f9245ab6311

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5955e7569109dd0d34cef9e2c9f66f9245ab6311
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250602/299eeda1/attachment.htm>

More information about the debian-security-tracker-commits mailing list